My Oracle Support Banner

Oracle Linux: Setting both port_promiscuous=YES and connect_from_port_20=YES for VSFTP won't allow user nobody to bind on port 20 (Doc ID 2659602.1)

Last updated on APRIL 28, 2020

Applies to:

Linux OS - Version Oracle Linux 6.0 to Oracle Linux 8.0 [Release OL6 to OL8]
Information in this document applies to any platform.

Symptoms

While using VSFTP and setting below options in /etc/vsftpd/vsftpd.conf:

port_promiscuous=YES
connect_from_port_20=YES

Won't allow user nobody ( used by VSFTP ) to bind properly on port 20 with permission denied error:

$ ftp -A server1

230 Login successful.

Remote system type is UNIX.

Using binary mode to transfer files.

ftp> ls

200 PORT command successful. Consider using PASV.

500 OOPS: vsf_sysutil_bind <---

##

Error visible in strace output:

bind(9, {sa_family=AF_INET, sin_port=htons(20), sin_addr=inet_addr("IP_ADDR)}, 16) = -1 EACCES (Permission denied)

 

 

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.